R62 and incorrect handling syslog and ESP protocols

[sabyno]

Hi everybody

I have one big problem.

I upgraded NGX R60 to R62. All seems OK and i got message upgrade successful, but just after upgrade I had problems with update SmartDefence. There was problem with SSL tunneling. I upgraded by the help of upgrade_import and upgrade_export utilites downloaded from checkpoint website. The upgrade was not successful

I tried upgrade in other way. I exported my policy from old version and I copied file object_5.0.C. Then I installed new version of SmartCenter and I imported file object_5.0.C and policy by cp merge command. Import was successful, so I was happy.

Now everything goes fine, but ...

I found two protocols, that checkpoint ignores and just forward. Protocols are ESP and syslog. Checkpoint doesn't log this protocols. When i want drop syslog for example by first rule checkpoint doesn't take no acction and it doesn't log anything, it just allow this protocol. I tried NAT over this protocol, but it doesn't work.

Is It bug??? Please help me. I don't know if R62 allows other protocols whithout any log or action

Thanks

[northlandboy]

Implied rules?

[sabyno]

There is not problem with impied rules I think. I log implied rules and i don't see syslog protocol. By the way in implied rules isn't rule containing syslog protocol.